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Ref 

r\CI 

# 


Hits 


^earrh Ouerv 


DBs 


Default 
Operator 


Plurals 


Time StamD 

1 1 ■ 1 1 w *W III us 


L2 


201 


("BERG, RYAN JAMES" or "ROSE, 
LARRY" or "PEYTON, JOHN" or 
"DANAHY, JOHN" or "GOTTLIEB, 
ROBERT" or "REHBEIN, CHRIS") 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:02 


L3 


4 


12 and ((detect$3 with 
(vulnerability or "virus" or 
"instrusion")) with (program$4 or 
"code" or "application")) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:16 


L4 


2349 


((detect$3 with (vulnerabilit$3 or 
"virus" or "instrusion")) with 
(program$4 or "code" or 
"annliration" or ("source" adi 
"code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:29 


L5 


18 


14 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 

"morliile"^ with (artinn^l nr 

1 1 IUUUIC J Will 1 ^C1V_IIL/I l-p J- Ul 

"routine"))) 


US-PGPUB; 
USPAT; 
EPO- JPO 1 
DERWENT 


OR 


ON 


2007/04/13 10:29 


L6 


3 


15 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO' JPO" 
DERWENT 


OR 


ON 


2007/04/13 10:29 


L7 


294 


726/25.ccls. 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:29 


L8 


68 


17 and ((detect$3 with 
(vulnerabilit$3 or "virus" or 
"instrusion")) with (program$4 or 
"mrlp" nr "annliration" or ("source" 
adj "code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:30 


L9 


1 


18 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 
"module"^ with factional or 

IIIUUUIV J Willi ^UV-HV/I 1^11 Vl 

"routine"))) 


US-PGPUB; 
USPAT; 
EPO- JPO* 
DERWENT 


OR 


ON 


2007/04/13 10:30 


L10 


1 


18 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO 1 JPO- 
DERWENT 


OR 


ON 


2007/04/13 10:31 


Lll 


809 


726/22.ccls. 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:30 


L12 


116 


Ill and ((detect$3 with 
(vulnerabilit$3 or "virus" or 
"instrusion")) with (program$4 or 
"code" or "application" or ("source" 
adj "code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:35 



4/13/07 2:09:43 PM 

C:\Documents and Settings\ttruong4\My Documents\EAST\Workspaces\Case-10824684-041504.wsp 



Page 1 



EAST Search History 



L13 
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112 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 
"module"^ with factional or 

1 1 IVVIUIV* J Willi I UvVIVI w ■ 

"routine"))) 


US-PGPUB; 
USPAT; 
EPO* JPO: 
DERWENT 


OR 


ON 


2007/04/13 10:33 


L14 


0 


113 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO* JPO" 
DERWENT 


OR 


ON 


2007/04/13 10:33 


LIS 


47 


(("source" adj "code") with 
vulnerab$7) 


US-PGPUB; 
USPAT; 
EPO 1 JPO: 
DERWENT 


OR 


ON 


2007/04/13 10:35 


L16 


3 


115 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:36 


L17 


3 


116 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 

"mnrli iIp'^ with (t\c\\c\c&\ or 

IIIUUUIC J Willi ^aL.LIUN^)J. \J\ 

"routine"))) 


US-PGPUB; 
USPAT; 
FPO* IPO" 
DERWENT 


OR 


ON 


2007/04/13 10:36 


L18 


535 


726/23.ccls. 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:35 


L19 


66 


118 and ((detect$3 with 
(vulnerabilit$3 or "virus" or 
"instrusion")) with (program$4 or 

"mrip" or "annliratinn" nr f'^ourrp" 

adj "code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 

L/Li\VVLn 1 


OR 


ON 


2007/04/13 10:37 


L20 


0 


119 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:37 


L21 


1 


119 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 

"mnrlulp"^ with fartinn^l or 

"routine"))) 


US-PGPUB; 
USPAT; 
EPO* JPO" 
DERWENT 


OR 


ON . 


2007/04/13 10:37 


L22 


453 


726/24.ccls. 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:37 


L23 


206 


122 and ((detect$3 with 
(vulnerabilit$3 or "virus" or 
"instrusion")) with (program$4 or 
"code" or "application" or ("source" 
adj "code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:39 
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L24 


0 


123 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO; JPO: 
DERWENT 


OR 


ON 


2007/04/13 10:39 


L25 


0 


123 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 

"mnrliilp''^ wirh far+inn^l or 

"routine"))) 


US-PGPUB; 
USPAT; 
EPO* JPO 1 
DERWENT 


OR 


ON 


2007/04/13 10:39 


L26 


310 


717/122 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:38 


L27 


1 


126 and ((detect$3 with 
(vulnerabilit$3 or "virus" or 
"instrusion")) with (program$4 or 

"rnHp" nr "annlirarinn" or f'^nnrrp" 

adj "code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:38 


L28 


0 


127 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO: JPO: 
DERWENT 


OR 


ON 


2007/04/13 10:39 


L29 


0 


127 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 

"mnHiilp"^ wirh fartion^Il or 

"routine"))) 


US-PGPUB; 
USPAT; 
EPO* JPO' 
DERWENT 


OR 


ON 


2007/04/13 10:39 


L30 


6676 


((generat$3 or creat$3 or 
establish$3) with (("model" or 
"module") with (actional or 
"routine")^ r 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:42 


L31 


18 


130 and ((detect$3 with 
(vulnerabilit$3 or "virus" or 
"instrusion")) with (program$4 or 

"roHp" or "annlirarinn" nr f^nurrp" 

adj "code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 

L/LI \VV L_ 1 1 1 


OR 


ON 


2007/04/13 10:42 


L32 


3 


131 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO* JPO- 
DERWENT 


OR 


ON 


2007/04/13 10:42 


L33 


4 


"7073198" 


US-PGPUB; 
USPAT; 
EPO: JPO: 
DERWENT 


OR 


ON 


2007/04/13 10:41 


L34 


749 


713/151 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:41 
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L35 


7 


134 and ((detect$3 with 
(vulnerabilit$3 or "virus" or 
"instrusion")) with (program$4 or 

"mrlp" or "annliraHon" or f'^onrrp" 

adj "code"))) 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 

L/L»r\ w V L-l M 1 


OR 


ON 


2007/04/13 10:42 


L36 


0 


135 and (("policy" or "rule") with 
("behavior" with "routine")) 


US-PGPUB; 
USPAT; 
EPO 1 JPO: 
DERWENT 


OR 


ON 


2007/04/13 10:42 


L37 


0 


135 and ((generat$3 or creat$3 or 
establish$3) with (("model" or 

"mnHnlp"^ with fartionffcl or 

"routine"))) 


US-PGPUB; 
USPAT; 
EPO' JPO* 
DERWENT 


OR 


ON 


2007/04/13 10:42 


SI 


2 


"20050010806" 


US-PGPUB; 
USPAT; 
EPO" JPO' 
DERWENT 


OR 


ON 


2007/03/22 14:56 


S2 


199 


("BERG, RYAN JAMES" or "ROSE, 
LARRY" or "PEYTON, JOHN" or 
"DANAHY, JOHN" or "GOTTLIEB, 
ROBERT" or "REHBEIN, CHRIS") 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/04/13 10:01 


S3 


5 


"OUNCE LABS, INC" 


US-PGPUB; 
USPAT; 
EPO; JPO; 
DERWENT 


OR 


ON 


2007/03/22 15:01 
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Goo g le Patent Search Hel p 



"in" is a very common word and was not included in your search, [ details] 

Patents Patents 1 - 10 on detecting vulnerabilities in source code. (0.23 seconds) 

Method and system for detecting a vulnerability in a network 

US Pat. 7073198 - Filed Aug 25, 2000 - nCircle Network Security, Inc. 

Patch levels refer to the degree to which the source code of the ... for a method 

and system of detecting vulnerabilities that does not subject the network ... 

Method and apparatus for detecting and identifyin g security vulnerabilities in an open network computer 
communication system 

US Pat. 5892903 - Filed Sep 12, 1996 - Internet Security Systems, Inc. 

40,. ,34 SOURCE/DESTINATION ADDRESS GENERATOR 36 SERVICE COMMAND GENERATOR ... 
The detected vulnerabilities or the location of services having little or no ... 



Intrusion detection system and method havin g dynamically loaded signatures 

US Pat. 6785821 - Filed Nov 4, 2002 - Cisco Technology, Inc. 

Further, in order to modify an intrusion detec-tion system's binary code, 

programmers need access to the entire source code, which can result in unnecessary ... 

Intrusion detection system and method having dynamically loaded si g natures 

US Pat. 6477651 - Filed Jan 8, 1999 - Cisco Technology, Inc. 

Hackers, on the other hand, attempt to find and attack vulnerabilities of the 

... system's binary code, programmers need access to the entire source code, ... 

S ystem , method and computer pro g ram product for risk assessment scannin g based on detected anomalous 
events 

US Pat. 6546493 - Filed Nov 30, 2001 - Networks Associates Technology, Inc. 
A method for scanning a source of suspicious network communications, ... 
computer code for updating a data-base of known vulnerabilities based on the risk ... 

System for determining web application vulnerabilities 

US Pat. 6584569 - Filed Mar 5, 2001 - Sanctum Ltd. 

Hackers can use these elements to hack into a site by viewing the source code, 
... A method for detecting security vulnerabilities in a web application ... 

Method and system for detectin g intrusion into and misuse of a data processin g system 

US Pat. 5557742 - Filed Mar 7, 1994 - Haystack Labs, Inc. 

... known system vulnerabilities and known attack procedures. ... and Appendix A 

provides source code listings of selected modules of one embodiment to ... 

Information security analysis system 

US Pat. 6253337 - Filed Jul 19, 1999 - Raytheon Company 

These are: Virus Computer Code Detection; Analysis of Computer Source and Executable 
Code; Dynamic Monitor-ing of Data Communication Networks; ... 



Testing a computer system 

US Pat. 6766458 - Filed Oct 3, 2000 - Networks Associates Technology, Inc. 
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The security checking program determines that this parameter is set to execute 
only signed embedded code. A recently common source of computer virus ... 

S ystem and method for providing trustworthy network security concern communication in an active securit y 
management environment 

US Pat. 6611869 - Filed Mar 31, 2000 - Networks Associates, Inc. 

The various 5 implementations of the source code and object and byte codes can 

be held on a computer-readable storage medium or embodied on a transmission ... 
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The "AND" operator is unnecessary - we include all search terms by default, [ details ] 
Web Results 1 - 10 of about 139,000 for a static vulnerability scanner for C and C++ code . (0.20 seconds) 

[pdf] ITS4: A Static Vulnerability Scanner for C and C++ Code 

File Format: PDF/Adobe Acrobat - View as HTML 

ITS4: A Static Vulnerability Scanner for C and C++ Code. John Viega, J.T. Bloch, Yoshi 
Kohno, Gary McGraw. Reliable Software Technologies. Dulles, Virginia ... 
www.acsac.org/2000/papers/78.pdf - Similar pages 



A Static Vulnerability Scanner for C and C++ Code (Researchlndex) 
We describe ITS a tool for statically scanning security critical C source code for 
vulnerabilities. Compared to other approaches, our scanning technique ... 
citeseer.ist.psu.edu/469618.html - 20k - Ca ched - Si m ilar pages 

ITS4: A Static Vulnerability Scanner for C and C++ Code - Viega ... 
We describe ITS a tool for statically scanning security critical C and C source code for 
vulnerabilities. Compared to other techniques, our results indicate ... 
citeseerist.psu.edu/viega00its.html - 22k - Cach ed - Similar pages 
[ More results from citeseer.ist.psu.edu ] 

ITS4: A Static Vulnerability Scanner for C and C++ Code 

Unlike other techniques, our method is also simple enough to scan C++ code despite the 
complexities inherent in the language. Using ITS4 we found new ... 

www.cse.ucsd.edu/users/tkohno/papers/ACSAC00/ - 3k - C a c h ed - SimijM.„P_age_s 

ITS4: A Static Vulnerability Scanner for C and C++ Code 

Title: ITS4: A Static Vulnerability Scanner for C and C++ Code. Authors: John Viega, et 
all. Summary: Rushabh Doshi. In short: ... 

keeda.stanford.edu/-radoshi/summariesA/iegaJTS4.html - 4k - Cached - S imilar pages 

Welcome to IEEE Xplore 2.0: 1TS4: a static vulnerability scanner ... 
ITS4. a static vulnerability scanner for C and C++ code Viega, J. Bloch, J.T. Kohno, Y. 
McGraw, G. Reliable Software TechnoL, Dulles, VA; ... 
ieeexplore.ieee.org/xpls/abs_all jsp?arnumber^898880 - Similar pages 



ITS4 

ITS4: A static vulnerability scanner for C and C++ code. Full text, Full text available on 
the Publisher site Publisher Site. Source, ACSAC archive ... 
portal, acm.org/citation. cfm?id=784731& 

dl=acm&coll=&CFID=1 51 51 51 5&CFTOKEN=61 8461 8 - SjmilaLpages 



Flawfinder Home Pa ge 

Flawfinder works by using a built-in database of C/C++ functions with well-known ... PScan 
(GPL license) is a source code scanner like flawfinder and RATS, ... 

www.dwheeler.com/flawfinder/ - 35k - Cached - Similar pages 



[Paper] An Evaluation of Static Source Code Analyzers for .., 
[5] J. Viega, J. Bloch, T. Kohno, & G. McGraw, ITS4: A static vulnerability scanner for C 
and C++ code, Proc. of the 16th Annual Computer Security ... 
www.actapress.com/PDFViewer.aspx?paperld=23852 - Similar pages 

[pdf] An Investigation of the Call Inte grit y of the Linux System 
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File Format: PDF/Adobe Acrobat - View as HTML 

[2] J. Viega, J. T. Bloch, T. Kohno, and G. McGraw, "ITS4: A static, vulnerability scanner 
for C and C++ code," in 16th Annual Computer „. 

www.chillarege.com/fastabstracts/issre2003/171-FA-2003.pdf - Simiiar pages 

Google Groups results for a static vulnerability scanner for C and C++ code 

Compiler detection of buffer overflows - comp.compilers - Aug 1 5, 2001 
>^*r FW: [Ethereal-users] build problems on ... - mailing. unix.ethereal-dev - May 18, 2004 
^ Change a traffic light from your car using yer lap to p ... - alt.hackers.malicious - Oct 1 5, 2000 



Result Page: 1 2345678910 Next 
Try Google Deskto p: search your computer as easily as you search the web. 

[ a static vulnerability scanner for d"a( I^^^H) 
Search within results | Langua g e Tools | Search Ti ps | Dissatisfied? Help us improve 



Google Home - Advertising Programs - Business Solutions - About Goog le 

©2007 Google 



http://www.googlexom/search?hl=en&^ 4/13/07 



vulnerability with source code - Google Search 



Page 1 of 2 



Sign in 

Web Images Video News Maps more » 



G0Q9 ' e [ vulnerability with source code 1 [Search"] 



Web Results 1 - 10 of about 4,980,000 for vulnerabilit y with source code . (0.21 seconds) 

Public Advisory: 01 ,09.07 // iDefense Labs 

Adobe Macromedia ColdFusion Source Code Disclosure Vulnerability ... iDefense has 
confirmed this vulnerability exists in Adobe Macromedia ColdFusion MX ... 
labs.idefense. com/intelligence/vulnerabilities/display. php?id=466 - 25k - Apr 11, 2007 - 
Cached - Similar pages 

Yaws Source Code Disclosure Vulnerability - Advisories - Secunia 
Yaws Source Code Disclosure Vulnerability - Advisories - Secunia. 
secunia.com/SA1 5740 - 27k - Cached - Similar pages 

Jetty JSP Source Code Disclosure Vulnera bilit y - Advisories - Secunia 
Jetty JSP Source Code Disclosure Vulnerability - Advisories - Secunia. 
secunia.com/advisories/17659/ - 28k - Apr 12, 2007 - Cached - Simila r pages 
[ M ore results from secunia.com ] 

mono XSP Server Source Code Disclosure Vulnerability - O'Reilly ... 
The XSP server is vulnerable to source code disclosure. Here is a demonstration, as well 
as a pointer to the advisory. If you use mono-xsp, ... 

www.oreillynet.com/onlamp/blog/2006/12/mono_xsp_server_source_code_di.html - 25k - 
Cached - Similar pages 

O'Reilly Network - Detecting Web Application Security Vulnerabilities 

Web application source code, independent of languages and platforms, is a major source 
for vulnerabilities. One of the CSI surveys on vulnerability ... 

www.oreillynet.com/pub/a/sysadmin/2006/11/02/webapp_security_scans. html - 24k - 
Cached - Similar pages 

How can I find security vulnerabilities in my source code? 

The original, and still the best, method for finding security vulnerabilities in source code is 
to read and understand the source code. ... 

www.tech-faq.com/source-code-security-vulnerabilities.shtml - 23k - 
Cached - Similar pages 

zlib Home Site 

Version 1.2.3 eliminates potential security vulnerabilities in zlib 1.2.1 and ... zlib 32-bit 
OCX and 16-bit DLL (Visual Basic interface, source code and ... 

www.zlib.net/ - 36k - Cached - Similar p ages 

Homeland Security helps secure open-source code | CNET News.com 
In the effort, which the government agency calls the "Vulnerability Discovery and ... 
Symantec will provide security intelligence and test the source code ... 
news. com. com/Homeland+Security+helps+secure+open-source+code/21 00-1 002_3- 
6025579.html - 58k - Apr 1 1 , 2007 - Cached - Similar pages 

SecuriTeam™ - CGI Script Source Code Disclosure Vulnerability in ... 

In a secure system, the user is not supposed to view the source-code of 'foo' by making an 
HTTP GET request. Vulnerability description: ... 

www.securiteam.com/windowsntfocus/5UP0L0AJFS.htmi - 23k - Cached - Similar pages 
Vulnerable Minds: Javascript Internal Vulnerability Scanner Source ... 
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Javascript Internal Vulnerability Scanner Source Code. This code was demoed at 
Shmoocon '07 during the Javascript Malware for a Grey Goo Tomorrow ... 
blog.vulnerablemindsxom/2007/03/javascript-internal-port-scan-source_25.html - 72k - Apr 
1 1 , 2007 - Cached - Similar pages 
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